Application Security Lead; DAST

Job Title:
Application Security Lead (DAST)

Location:
Hybrid during contract period with expectation to transition to onsite following conversion. Potential onsite locations include Atlanta, Charlotte, Raleigh, or Richmond.

Compensation: $75/Hour - $85/Hour W2

Contract To Hire:
Yes

We are seeking an experienced Application Security Lead (DAST) to support enterprise application security initiatives across modern cloud and containerized environments. This role will focus on onboarding applications into security scanning programs, maintaining scanning schedules, monitoring scan failures, and consulting with development teams to ensure vulnerabilities are properly identified, analyzed, and remediated.

The ideal candidate will have strong hands on experience with application security tools, container security platforms, and vulnerability management processes. This individual will work closely with engineering teams to improve the organization’s security posture by integrating security tooling into development workflows and helping teams understand and resolve security findings.

Support the onboarding of applications into security scanning platforms and maintain scanning schedules.

Monitor scan execution and troubleshoot scanning failures or configuration issues.

Analyze vulnerabilities identified through automated scanning tools and prioritize remediation based on severity and risk.

Validate security findings by reviewing results and confirming false positives or mitigated by design scenarios.

Create clear documentation and actionable security reports for development teams and stakeholders.

Work closely with development teams to provide secure coding guidance and remediation recommendations.

Explain vulnerability findings and assist engineering teams in resolving security issues.

Promote secure development practices aligned with the secure software development lifecycle.

Develop and maintain custom scripts to automate security processes and enhance scanning capabilities.

Assist with integrating security tooling into development and delivery workflows.

Continuously improve scanning configurations to optimize performance, accuracy, and coverage.

Deploy and configure container scanning tools to secure containerized environments.

Analyze container vulnerabilities and partner with development teams to address security issues in container images and deployments.

Onboard applications into DAST scanning workflows with proper configuration and authentication.

Configure and troubleshoot DAST scans to ensure application accessibility and scan accuracy.

Review and validate SAST and SCA findings.

Confirm or reject false positives and evaluate developer claims of mitigated vulnerabilities.

• Strong hands on experience with application security testing tools in at least one of the following categories
• DAST tools such as Burp Suite or OWASP ZAP
• SAST tools such as Checkmarx or Veracode
• SCA tools such as Black Duck or Snyk

Hands on experience with container security and deployment of container scanning tools such as Wiz, Prisma, or Aqua Security.

Proficiency in scripting languages such as Python, Bash, or Power Shell for automation and tool integration.

Strong understanding of secure software development lifecycle practices and common vulnerabilities including the OWASP Top 10.

Experience troubleshooting complex scanning issues and optimizing security tool configurations.

Strong analytical skills for vulnerability triage and risk prioritization.

Excellent communication skills with the ability to collaborate with development teams and clearly explain technical security findings.

• Experience integrating application security tools into CI CD pipelines.
• Familiarity with cloud native security environments including AWS, Azure, or Google Cloud.
• Experience working with container orchestration platforms such as Kubernetes.
• Exposure to Dev Sec Ops  practices and security automation frameworks.
• Relevant security certifications such as OSWE, GWAPT, CSSLP, or similar.